= fs.com Switches purchased in 2021 =
Below is the commands used to configure the switches we purchased in 2021. The switches are installed as follows:
|| || '''Rack 1''' (Back) || '''Rack 2''' || '''Liebert''' ||'''Rack 4''' (Back) ||'''Rack 5''' (Back)||
|| 01 || !R1S1:S58050-48T4Q (241) || !R2S1:S5860-20SQ (240)-Back || || !R4S1:S5800-48T4S (247)|| !R5S1:S5810-48TS-P (248)||
|| 02 || !R1S2:S58000-48T4S (242) || !R2S2:S5800-48T4S (243)-Back || || || ||
|| 03 || || !R2S3:S5800-48T4S (244)-Front|| || || ||
|| 04 || || !R2S4:S5800-48T4S (245)-Front|| || || ||
|| 04 || || !R2S5:S5800-48T4S (246)-Front|| || || ||
||<-2>'''Firewall Ports''' ||
|| !R2S2:4 U-Server VLAN || !R2S2:11 T-Firewalled ||
|| !R2S2:3 U-Public || !R2S2: 10 T-13,14,100,116 ||
||<-13>'''!R2S1:S5860-20SQ, 10.10.129.240'''||
||!R1S2||!R2S2||!R2S3||!R2S4 ||!R2S5 ||!R4S1 ||!R5S1 || || || || || ||!R1S1||
||INET1||INET2|| || || || || || || || || || || ||
||<-26>'''!R2S2:5800, 10.10.129.243'''||
||1/2||3/4||5/6 ||7/8 ||9/10 ||11/12 ||13/14 ||15/16 ||17/18 ||19/20 ||21/22 ||23/24 ||25/26 ||27/28 ||29/30 ||31/32 ||33/34 ||35/36 ||37/38 ||39/40 ||41/42 ||43/44 ||45/46 ||47/48 ||49/50 ||51/52 ||
||10 ||20 ||116 ||20 ||Agg4-LACP ||1d,119 || || || || || || || || || || || || || || || || || || || || ||
||10 ||10 ||1 ||Agg4-LACP ||1d,13,14,100,116 || || || || || || || || || || || || || || || || || || || || || ||
* Agg4: 10d,14,116,119
<<TableOfContents()>>
== Initial Setup Notes for 5800 Series Switches ==
SSH into the switch with the default user:pass = "admin:admin"
'''First Change the password''', note that we are using local authentication mode, not "aaa" mode. What is aaa mode? That's for authenticating against a radius/TACACS+ server.
{{{
Switch# configure terminal
Switch(config)# username <username> privilege 4 password <password>
Switch(config)# line vty 0 7
Switch(config-line)# login local
Switch(config-line)# exit
Switch(config)# exit
}}}
'''Set the time'''
{{{
Switch# configure terminal
Switch(config)# clock set datetime 11:30:00 10 26 2013
Switch(config)# clock set summer-time dst date 3 13 2022 02:00:00 11 6 2022 02:00:00 120
Switch(config)# exit
}}}
'''Configure Management IP'''
{{{
Switch# configure terminal
Switch(config)# management ip address 10.10.129.X/24
Switch(config)# exit
Switch# show management ip address
}}}
'''Create VLANs'''
{{{
Switch# configure terminal
Switch (config)# vlan database
Switch (config-vlan)# vlan 10 name Server
Switch (config-vlan)# vlan 100 name Office
Switch (config-vlan)# vlan 116 name Labs
Switch (config-vlan)# vlan 119 name Firewalled
Switch (config-vlan)# exit
Switch (config)# end
Switch#
}}}
'''Setup Management VLAN Interface'''
Setup management on a vlan interface
{{{
switch# configure terminal
switch(config)# interface vlan 10
switch(config)# ip address 10.10.129.X/24
switch(config)# Ctrl+z
Switch# show management ip address
}}}
'''Set the banner to show the name of the switch'''
{{{
Switch# configure terminalThe // at the end of the line indicates the start of a comment:
Switch# banner login # You are logged into RXSY #
Switch# exit
Switch# show running //validates that it worked
}}}
'''In the web interface'''
* Configuration
* Ethernet Status (Change eth-0-50 to trunk)
* VLAN (Set VLANs for 10,100,116,119 as appropriate - default is 116; Make sure to change eth-0-50 default 10 allow 10,100,116,119)
* Maintenance
* System Configuration (file out page and save)
* User Management (Add scot and vadmin; change password for admin)
* Reboot/Save (save the configuration)
* Network
* IP Routing
* IPv4 Static Route Information
* New:
* Destination = 0.0.0.0
* Mask = 0.0.0.0
* Nexthop = 10.10.129.1
* Distance = 1
== Common Commands and Quirks ==
The // at the end of the line indicates the start of a comment:
=== Show Port Status ===
{{{
Switch# show interface status //show status of all the ports
Switch# show interface eth-0-49 //shows the status of eth-0-49
}}}
=== Show VLAN information for port ===
{{{
switch# show interface switchport interface eth-0-1
}}}
=== Backup and Restore the switch Configuration ===
To backup the configuration, ssh into the switch and perform the following:
{{{
Switch# copy flash:/startup-config.conf mgmt-if scp://10.10.129.X/startup-config.conf
}}}
To download a configuration file:
{{{
Switch# copy mgmt-if scp://10.10.10.163/startup-config.conf flash:/startup-config.conf
}}}
=== LACP configuration on S5850 10 GIG Switch ===
{{{
Switch# configure terminal
Switch(config)# port-channel 1 load-balance-mode dynamic
Switch(config)# interface eth-0-47
Switch(config-if)# no shutdown
Switch(config-if)# channel-group 1 mode active //active is the key word to get you LACP!
Switch(config-if)# exit
Switch(config)# [repeat previous 4 for each port]
Switch(config)# end
Switch# show channel-group summary
}}}
The final configuration was this:
{{{
R2S2:
Aggregator Name Mode Protocol Ports Purpose
-----------------+---------+--------------+-----------------------------------------------------------+-----------
agg1(SU) DLB LACP eth-0-47(B) eth-0-48(B) (Promise 64)
agg2(SD) SLB LACP(Dynamic) eth-0-45(s) eth-0-46(s) eth-0-47(s) eth-0-48(s) (Promise 32)
agg4(SU) SLB LACP(Dynamic) eth-0-8(B) eth-0-9(B) (Firewall)
}}}
Where agg2 is for Promise 32 and agg4 is for Promise 64. Note if load-balance-mode doesn't work, try LACP mode.
=== Trunk Quirk ===
IF you have something acting as a tagged port, then you cannot assign it as the default VLAN.
Scenario: I have the firewall using tagged VLANs on the procurve: 13,14,100,116 All tagged - no default untagged VLAN assigned.
On the new switch, you __cannot__ pick one of these to be the default VLAN, even though it was in the list of permitted (tagged) VLANs, it would not work. Choosing 1 (an unused VLAN) to be the default VLAN allowed it to start working again. Picky! Picky!